org.apache.flex.blazeds:flex-messaging-core@4.7.0 vulnerabilities

org.apache.flex.blazeds:flex-messaging-core is a flex messaging core component for blazDS

Affected versions of this package are vulnerable to Arbitrary Code Execution. It uses AMF3 deserializers which allow instantiation of arbitrary classes via public parameter-less constructors. An attacker may exploit this to send a malicious AMF3 object to the system to execute arbitrary code.

Upgrade org.apache.flex.blazeds:flex-messaging-core to version 4.7.3 or higher.

org.apache.flex.blazeds:flex-messaging-core is a flex messaging core component for blazDS

Affected versions of this package are vulnerable to Improper Input Validation. It allows remote attackers to send HTTP traffic to intranet servers via a crafted XML document, related to a Server-Side Request Forgery (SSRF) issue.

Upgrade org.apache.flex.blazeds:flex-messaging-core to version 4.7.1 or higher.

org.apache.flex.blazeds:flex-messaging-core is a flex messaging core component for blazDS

Affected versions of this package are vulnerable to XML External Entity (XXE) Injection. A remote attacker could read arbitrary files via an AMF message containing an XML external entity declaration in conjunction with an entity reference. An AMF message (Action Message Format) is a binary format used to serialize object graphs such as ActionScript objects and XML. The readBody method is used to parse the body of the AMF message,which in turn deserializes the message. Under certain conditions, the body is sent to be parsed in the readXml() method as a UTF string. The xml string is then used to build a Document, via the DocumentBuilder, by using the stringToDocument method. The DocumentBuilder allows external entities by default, resulting in the possible XML External Entity (XXE) injection.

Upgrade org.apache.flex.blazeds:flex-messaging-core to version 4.7.1 or higher.